Tag: emerging threats
3175 articles
5M Records Exposed: Exclusive Alarming Auto Insurance Leak
Over 5 million auto insurance records — including names, policy numbers, VINs and claims histories — were left publicly accessible by a simple cloud misconfiguration, turning routine paperwork into a roadmap for fraud. Find out how it happened and what you can do now to protect your privacy.
LockBit Exclusive: Critical New Victims Identified
LockBit’s latest iteration is back—and meaner: researchers found a cross-platform strain in September that can encrypt Windows, Linux and VMware ESXi in a single strike, shrinking defenders’ response window and multiplying damage. If you haven’t expanded EDR to Linux and hypervisors or tested immutable backups yet, now’s the time.
Threat Actors Ramp Up ToolShell Exploits: Exclusive Danger
Threat actors are rapidly escalating ToolShell exploits — discover what’s changing, why it matters, and the simple steps you can take to stay protected.
LockBit Exclusive: Critical New Victims Revealed
LockBit keeps changing its playbook—September telemetry uncovered roughly a dozen incidents, about half tied to a new strain that can hit Windows, Linux and hypervisors. That cross‑platform reach broadens the blast radius from a single breach and forces defenders to rethink old assumptions.
Cyberattack Cripples EU Airports: Exclusive Response
When the screens went black and check‑in kiosks died at multiple European airports, staff reverted to paper and long queues — a stark reminder that a single cyberattack can paralyze travel. As IT teams, CERTs and Europol raced to contain ransomware and trace the perpetrators, experts say this disruption must spark urgent, industrywide cybersecurity reform.
Cyberattack Hits EU Airports: Exclusive Critical Alert
A ransomware infection has rippled through EU airports, knocking out check‑in kiosks and flight displays and forcing travelers into long queues while teams scramble to isolate systems—was this criminal extortion, a state‑level probe, or a preventable collapse of ageing IT and lax supplier controls? Our exclusive alert explains what happened, who noticed first, and how authorities are racing to restore operations.
Blitz Spear Phishing Campaign Exclusive: NGOs at Risk
Imagine the inbox that coordinates relief suddenly opening the door to attackers: a one-day spear-phishing blitz—dubbed PhantomCaptcha—targeted NGOs and regional offices helping Ukraine with convincing impersonations and weaponized attachments to harvest credentials and deploy malware. It’s a stark reminder that adversaries now weaponize trust and identity to disrupt aid, not just networks.
Threat Actors: Exclusive Surge in Dangerous App Exploits
Exclusive: Threat actors are unleashing a dangerous surge in app exploits—here’s what’s driving the spike and quick, practical steps to keep your apps and users safe.
LockBit Ransomware Exclusive: Severe Victims Revealed
An updated LockBit variant—faster, stealthier and able to run native payloads on Windows, Linux and VMware ESXi—has been tied to a dozen recent intrusions, dramatically shrinking the window defenders have to detect and stop catastrophic outages.
Pakistani-Linked Hacker Group: Exclusive Threat to India
Pakistan-linked operators are quietly slipping DeskRAT into Indian government networks to siphon secrets — a stealthy espionage campaign that makes stronger detection, logging and diplomatic response urgent.
Pakistani-Linked Hacker Group: Exclusive Severe India Hack
A Pakistani-linked hacker group reportedly pulled off a severe, exclusive cyberattack on India — here’s who’s behind it and why the fallout matters for national and regional security.
Blitz Spear Phishing Campaign Exclusive: Severe NGO Threat
What do you do when a helpful-looking email hands attackers your keys? In October’s PhantomCaptcha spear‑phishing campaign, NGOs and local governments supporting Ukraine were hit with short, surgical, time‑sensitive lures and weaponized attachments that harvested credentials and opened the door to loaders and remote access trojans.
Lazarus Group Exclusive: Critical Threat to Europe’s Defense
Who’s stealing Europe’s drone blueprints — and why? Investigators now point to North Korea’s Lazarus Group and Operation DreamJob, a stealthy campaign targeting small defense firms to grab design files, accelerate domestic drone programs, and probe weaknesses in Europe’s nascent “drone wall.”
Pakistani-Linked Hacker Group Exclusive: Major India Breach
A Pakistan-linked group called TransparentTribe quietly deployed the DeskRAT trojan to infiltrate Indian government networks, harvesting credentials and sensitive documents over months. The patient, espionage-focused campaign raises urgent questions about when cyber intrusions become acts of war.
TP-Link VPN Routers Stunning Critical Flaws Exposed
Researchers and U.S. cyber agencies have flagged critical vulnerabilities in TP‑Link VPN routers that are being actively exploited, potentially turning your gateway into a persistent back door. Read on to see which models are affected and the immediate steps to protect your home or small‑business network.
Lazarus Group Exclusive: Stunning Threat to EU Defense
Europe’s drone industry is being stalked by North Korea’s Lazarus Group, which used fake recruitment DreamJob lures to slip malware into engineers’ inboxes and siphon designs, test data and R&D secrets. The campaign shows how porous modern research networks are—and how cyber espionage can become a direct, strategic threat to EU defence and supply‑chain security.
Lazarus Group Exclusive: Dire Threat to European Defense
Who watches the watchers? Researchers say North Korea’s Lazarus Group—behind Operation “DreamJob”—has quietly infiltrated European drone and counter‑UAS R&D to steal designs, credentials and test data, putting the continent’s push for a layered “drone wall” at real risk of espionage, sabotage and costly setbacks.
TP-Link VPN Routers: Exclusive Critical Flaws Exposed
Think your TP‑Link VPN router is protecting your network? New Forescout research reveals critical flaws that can let attackers intercept traffic and maintain persistent access—update firmware, disable WAN management, and change default credentials now.
Lumma Stealer: Exclusive Report on Dangerous Vidar 2.0
When stolen‑credential marketplaces start to look like legit app stores, everyone loses—Lumma Stealer’s resurgence and the reborn Vidar 2.0 (Vidar 20) are fueling a sustained, hard‑to‑detect threat through Q4 2025. Read our exclusive to learn the practical steps defenders and everyday users need now: validate IOCs, tighten MFA, and sharpen telemetry.
Lazarus Group Exclusive: DreamJob Threatens EU Defenses
“If you build it, they will steal it” — North Korea’s Lazarus Group is quietly targeting EU drone engineers, lifting schematics, firmware, and supplier data to speed or sabotage adversaries’ emulation of Western platforms. The result: stolen designs and corrupted files that can derail production and readiness without a single shot fired.
TP-Link VPN Routers Exclusive: Severe Security Flaws
Heads-up: researchers found critical, actively exploited flaws in TP‑Link VPN routers that can give attackers persistent access to your network and traffic. Update firmware, disable unnecessary remote management, replace default passwords, and swap unsupported devices to lock your front door again.
TP-Link VPN Routers: Stunning Critical Flaws Found
Think your TP‑Link VPN router is the guardian of your home network? Researchers discovered critical, actively exploited flaws that can let attackers intercept traffic or gain persistent access—patch, disable WAN management, or replace affected devices now.
Lumma Stealer Exclusive: Vidar 2.0 Fuels Dangerous Rise
The Lumma Stealer leak has supercharged Vidar 2.0, recycling stolen credentials and exposed code into a stealthier, cheaper toolkit for criminals. Trend Micro warns defenders to brace for rising Vidar 2.0 activity through Q4 2025.
TP-Link VPN Routers: Exclusive Critical Flaw Revealed
Researchers just found the keys to TP‑Link VPN routers: critical flaws could let attackers hijack home and small‑business networks to snoop, redirect traffic, or stage wider attacks. Patch now, disable unnecessary remote management, and treat your router like vital infrastructure before it’s too late.